CVE-2025-68197
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2025-68197, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-12-16

Last updated on: 2025-12-18

Assigner: kernel.org

Description

In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix null pointer dereference in bnxt_bs_trace_check_wrap() With older FW, we may get the ASYNC_EVENT_CMPL_EVENT_ID_DBG_BUF_PRODUCER for FW trace data type that has not been initialized. This will result in a crash in bnxt_bs_trace_type_wrap(). Add a guard to check for a valid magic_byte pointer before proceeding.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-12-16
Last Modified
2025-12-18
Generated
2026-07-06
AI Q&A
2025-12-16
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a null pointer dereference in the Linux kernel's bnxt_en driver, specifically in the function bnxt_bs_trace_check_wrap(). It occurs when older firmware sends an uninitialized FW trace data type (ASYNC_EVENT_CMPL_EVENT_ID_DBG_BUF_PRODUCER), causing a crash in bnxt_bs_trace_type_wrap(). The fix adds a guard to check for a valid magic_byte pointer before proceeding to prevent the crash.

Impact Analysis

This vulnerability can cause the Linux kernel to crash due to a null pointer dereference when processing certain firmware trace data. This may lead to system instability or denial of service on affected systems using the bnxt_en driver with older firmware.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-68197. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart